lang icon English
  • News
  • >
  • North Korea's Sapphire Sleet Group Steals $10M in Cryptocurrency
Auto-Filling SEO Website as a Gift

Launch Your AI-Powered Business and get clients!

No advertising investment needed—just results. AI finds, negotiates, and closes deals automatically

Nov. 23, 2024, 11:41 a.m.
233

North Korea's Sapphire Sleet Group Steals $10M in Cryptocurrency

The North Korea-linked hacker group Sapphire Sleet is believed to have stolen over $10 million in cryptocurrency through social engineering campaigns over six months. According to Microsoft, the group has been using fake LinkedIn profiles, posing as recruiters and job seekers to generate money for the nation under sanctions. Active since at least 2020, Sapphire Sleet is related to hacking groups APT38 and BlueNoroff. In November 2023, Microsoft disclosed that the group had set up infrastructure that imitated skills assessment portals for its campaigns. One primary tactic used by Sapphire Sleet involves pretending to be a venture capitalist interested in a target’s company, initiating an online meeting. When targets attempt to join, they encounter error messages urging them to contact the room administrator or support team. If the victim contacts the threat actor, they receive either an AppleScript (. scpt) or Visual Basic Script (. vbs) file, depending on their operating system, under the guise of resolving the issue.

These scripts download malware, allowing attackers access to credentials and cryptocurrency wallets, leading to theft. Sapphire Sleet also impersonates recruiters from financial firms like Goldman Sachs on LinkedIn, luring targets to complete a skills assessment that delivers malware to their devices. Microsoft has noted that North Korea sends thousands of IT workers abroad, creating a revenue stream from "legitimate" work, intellectual property theft, and data theft-for-ransom. These workers use facilitators to access platforms for remote job applications and create fake profiles on sites like GitHub and LinkedIn. In some cases, they employ AI tools like Faceswap to alter stolen photos and documents or to create professional-looking images for resumes and job applications. They also experiment with other AI technologies such as voice-altering software. North Korean IT workers meticulously track their earnings, collectively generating at least $370, 000 through these activities, as per Microsoft’s findings.



Brief news summary

Microsoft has discovered a North Korean-linked hacking group known as Sapphire Sleet, which has stolen over $10 million in cryptocurrency since 2020. Related to groups APT38 and BlueNoroff, Sapphire Sleet employs social engineering by creating fake LinkedIn profiles, masquerading as recruiters or venture capitalists, to target finance professionals. They lure victims into online meetings where they deploy malicious scripts to gain access to credentials and cryptocurrency wallets. Frequently, they impersonate recruiters from prestigious firms like Goldman Sachs, tricking victims into visiting fake skills assessment sites that install malware. Microsoft highlights North Korea's dual approach: using IT workers overseas to earn legitimate income and conduct data theft. These operatives leverage platforms like GitHub and LinkedIn, utilizing AI tools such as Faceswap and voice changers to secure remote jobs and establish credibility. Microsoft's findings reveal that these techniques have generated around $370,000 for the hackers, showcasing their effective exploitation of digital platforms for financial gain.
Business on autopilot

AI-powered Lead Generation in Social Media
and Search Engines

Let AI take control and automatically generate leads for you!

I'm your Content Manager, ready to handle your first test assignment

Language

Content Maker

Our unique Content Maker allows you to create an SEO article, social media posts, and a video based on the information presented in the article

news image

Last news

Amazon's $20 Billion AI and Cloud Data Center Investment Transforms Pennsylvania Economy

June 9, 2025, 2:37 p.m.

Genuine Marketing Group Launches ZPTAG Blockchain Platform for Cannabis Industry Beta Testing

June 9, 2025, 2:19 p.m.

2025 Czech Government Bitcoin Scandal: Justice Minister Resigns Amid Controversy

June 9, 2025, 10:28 a.m.

The Best for your Business

Learn how AI can help your business.
Let’s talk!

June 9, 2025, 2:37 p.m.

Amazon's $20 Billion Investment in Pennsylvania A…

Amazon has announced a historic $20 billion investment to build two major artificial intelligence (AI) and cloud computing data center complexes in Pennsylvania, marking the largest private sector commitment in the state's history.

June 9, 2025, 2:19 p.m.

Cannabis Transparency Gets Boost With GMGZ's Bloc…

Genuine Marketing Group Inc.

June 9, 2025, 10:28 a.m.

2025 Czech Government Bitcoin Scandal

The 2025 Czech government Bitcoin scandal is a major political controversy in the Czech Republic, centered on a large Bitcoin donation to the Ministry of Justice, which led to the resignation of Justice Minister Pavel Blažek.

June 9, 2025, 10:16 a.m.

Getty Images and Stability AI Face Landmark UK Co…

Getty Images and Stability AI are engaged in a major copyright trial in the British High Court that could significantly influence the future of the generative artificial intelligence (AI) industry.

June 9, 2025, 6:29 a.m.

Apple Heads into Annual Showcase Reeling from AI …

At the 2025 Worldwide Developers Conference, Apple faces significant challenges that threaten its traditional role as a leader in technological innovation.

June 9, 2025, 6:25 a.m.

Ripple and JETRO-Backed Web3 Salon Empower Blockc…

Ripple has announced a strategic partnership with Web3 Salon, a blockchain initiative supported by the Japan External Trade Organization (JETRO), aimed at strengthening Japan’s Web3 ecosystem.

June 8, 2025, 2:17 p.m.

Watch Out For These Levels If Bitcoin Price Retur…

The Bitcoin price has not exhibited the same momentum it showed at the start of last month throughout June.

All news
close icon

Your News is ready

Your article is ready

Lorem ipsum dolor sit amet consectetur adipisicing elit. Fuga dolor minus maiores. Aut vero expedita dicta, dolorem odit excepturi odio doloremque voluptatem repellat aliquam? Dolores nemo eum id pariatur! Nobis!

close icon
close icon
close icon
close icon

Join our community of experts

Create your own avatar to work for you — completely free of charge!

or register using your or register using your email:

Check your email for a verification link

Please fill out the checkbox

close icon

Welcome to Neuron Expert!

  • Gain access to international networking of experts
  • Opportunity to implement the most advanced technologies in business
  • Create indispensable assistants
  • Create indispensable assistants
  • and much more...
close icon

Please check your email for the activation link.

close icon

Launch Your AI-Powered Business

and get clients without any advertising investment!

Auto-Filling SEO Website as a Gift

AI finds clients, negotiates, and closes deals on its own.
You just need to connect your social media and count the profits!

fully automated mode
SMM
SEO
Email-MArketing

AI Marketing Across All Social Media

Let AI take control and automatically generate leads for you!!

Create and publish viral social media content on autopilot

SALES
CUSTOMER RETENTION
AUTOMATION

AI Sales Manager + CRM

A revolutionary solution for sales automation based on artificial intelligence

AI sales managers work 24/7, with no need for sleep, food, or breaks, and speak all languages.

Start your free trial today!
close icon
close icon

Support

close icon
close icon

Content Maker

Learn how to craft press releases, create unique social media posts, write SEO-optimized articles for websites, and produce videos, all from a single source

Publish created content in one click to all networks from one place

close icon

You have unsubscribed from the mailing list recklessly but successfully.

We are not saying goodbye and look forward to seeing you again.